Web Development

Static Code Analysis For PHP

WhiteHat has announced support for analyzing source code built using the PHP programming language within its Sentinel Source static code analysis solution.

The product now advances the ability for static analysis to model and simulate the execution of PHP. The firm plays down competing (and open source) products as "typically limited" by the fact that they cannot overcome the challenges presented by dynamic programming languages, such as dynamic typing.

This PHP offering ships with a tuned type inference system that complements its Runtime Simulation algorithm to provide what should be "deeper insight" into source code.

WhiteHat's Jerry Hoff says that Sentinel Source now supports three of the most popular web development languages: CSharp, Java, and PHP.

"WhiteHat Security customers can now benefit from its leading application security testing solutions throughout the SDLC, from testing code on the very first day of development with Sentinel Source to production-safe testing of live websites and applications via WhiteHat's award-winning Sentinel dynamic application security testing (DAST) product line," said Hoff.

Dr. Dobb's encourages readers to engage in spirited, healthy debate, including taking us to task.
However, Dr. Dobb's moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing or spam. Dr. Dobb's further reserves the right to disable the profile of any commenter participating in said activities.

This month's Dr. Dobb's Journal

This month,
Dr. Dobb's Journal is devoted to mobile programming. We introduce you to Apple's new Swift programming language, discuss the perils of being the third-most-popular mobile platform, revisit SQLite on Android
, and much more!